Air India only suffered one violation of larger airline data (though not the biggest) in recent memory. The Times of India reported Air India has revealed that a violation endangers around 4.5 million passengers whose data is registered with the Sita system provider between August 2011 and the end of February 2021. Intruders cannot get a password, but they have access to the name, contact info , Tickets and Infoful Flyer Info (including for Star Alliance).
The perpetrators also have access to credit card info, although the usefulness of the data may be limited because the CVV / CVC number is not included.
The airline said first of the incident on February 25 (and issued a warning on March 19), but it only studied the identity of the affected passengers on March 25 and May 4. It has investigated violations and has locked an affected server, including resetting the password for the Frequent Flyer program.
It is not clear who is responsible for the violation. However, the damage is not limited to one airline. Stia told Bleepingcomputer in a statement that customers from several airlines were victims, including tourists who fly with Air New Zealand, Cathay Pacific, Finnair, Jeju Air, Lufthansa, Malaysia Airlines, SAS and Singapore Airlines. While this is not 2018 Cathay Pacific Brids that touch up to 9.4 million customers, the impact can be felt throughout the world for a while to come.